USSN: 09/761,959 Page 2 

Amendments to the specification 

Please amend the paragraphs beginning at page 4, line 30 through page 5, line 26 of the 
specification as follows: 

an applications layer (200) f or containing a plurality of user security applications; 

a layered services layer (201) f or containing a plurality of security services 
protocols , a languag e int e rfac e- adapt e r, and tools for policy and model authoring or th e 

a common security services management (CSSM) layer (302)- underlying the 
layered services layer comprising a plurality of security services management means 
(203 - 208), a set of integrity services, a manager of security contexts for s e curity services, 
a policy int e rpr e t e r (221), and a plurality of interfaces (209 - 214) via which th e CSSM can 
access the for interfacing with add-in security services module s (216 - 221) described 
bolow; and 

a n add-in security function m odules layer (215) capable of accoptin gu nderlying 
the common security services manager layer, configured to accept a plurality of add-in 
security services module s (216 - 221) implementing a set of standard security services sefc 
of functions; 

characterized in that said security archit e ctur e comprises; 

a [[G]]generic [[T]]trust [[P]]golicy [[L]]Hbrar y (termed heroin GTPL, 217) having 
all the standard APIs of a prior art trust policy library (117) and some extra APIs which 
d e al with Trust e d Policy Description File (termed heroin TPDF, 223) within the add-in 
security modules layer and supporting a set of standard trust policy Application 
Programming Interfaces (APIs); 



a trust policy description file-(223)- comprising a set of domain-specific trust 
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policies written in a policy description language common to said security architecture; 
and 

a policy interpreter (22d), said policy interpreter operating to interpret a set of 
trust policies contained in said trust policy description file (223). 



